Fallos del tipo CWE-129
266 resultadosCVE-2022-42011MEDIUMAn issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can caEPSS 1.3%CVE-2022-26100—SAPCAR - version 7.22, does not contain sufficient input validation on the SAPCAR archive. As a result, the SAPCAR process may crash, and thEPSS 1.1%CVE-2023-28004CRITICAL
A CWE-129: Improper validation of an array index vulnerability exists where a specially crafted
Ethernet request could result in denial oEPSS 1.1%CVE-2024-31581CRITICALFFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability in libavcodec/cbs_h266_syntax_template.c. EPSS 1.1%CVE-2023-6298MEDIUMApryse iText PdfDocument.java main array indexEPSS 1.1%CVE-2021-21949CRITICALAn improper array index validation vulnerability exists in the JPEG-JFIF Scan header parser functionality of Accusoft ImageGear 19.10. A speEPSS 1.1%CVE-2023-2008HIGHA flaw was found in the Linux kernel's udmabuf device driver. The specific flaw exists within a fault handler. The issue results from the laEPSS 1.0%CVE-2025-5868HIGHRT-Thread lwp_syscall.c sys_thread_sigprocmask array indexEPSS 1.0%CVE-2023-20080HIGHCisco IOS and IOS XE Software IPv6 DHCP (DHCPv6) Relay and Server Denial of Service VulnerabilityEPSS 1.0%CVE-2021-35005LOWThis vulnerability allows local attackers to disclose sensitive information on affected installations of TeamViewer. An attacker must first EPSS 0.9%CVE-2022-1237HIGHImproper Validation of Array Index in radareorg/radare2EPSS 0.8%CVE-2024-38623CRITICALfs/ntfs3: Use variable length array instead of fixed sizeEPSS 0.8%CVE-2022-31135MEDIUMMaliciously crafted evidence packet may cause denial of serviceEPSS 0.8%CVE-2026-3083HIGHGStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution VulnerabilityEPSS 0.8%CVE-2024-23084HIGHApfloat v1.10.1 was discovered to contain an ArrayIndexOutOfBoundsException via the component org.apfloat.internal.DoubleCRTMath::add(doubleEPSS 0.8%CVE-2025-5866HIGHRT-Thread lwp_syscall.c sys_sigprocmask array indexEPSS 0.7%CVE-2024-21493MEDIUMAll versions of the package github.com/greenpau/caddy-security are vulnerable to Improper Validation of Array Index when parsing a CaddyfileEPSS 0.7%CVE-2023-26066CRITICALCertain Lexmark devices through 2023-02-19 have Improper Validation of an Array Index.EPSS 0.7%CVE-2024-0901HIGHSEGV and out of bounds memory read from malicious packetEPSS 0.7%CVE-2025-57052CRITICALcJSON 1.5.0 through 1.7.18 allows out-of-bounds access via the decode_array_index_from_pointer function in cJSON_Utils.c, allowing remote atEPSS 0.7%